Please merge wordpress 2.5.1-10 (universe) from Debian (unstable)

Bug #301340 reported by Stefan Lesicnik on 2008-11-23
2
Affects Status Importance Assigned to Milestone
wordpress (Ubuntu)
Undecided
Unassigned

Bug Description

Binary package hint: wordpress

wordpress (2.5.1-10ubuntu1) jaunty; urgency=low

  * Merge from debian unstable, remaining changes:
   + debian/apache.conf:
    - Changed to use /var/www instead of /srv/www for virtual webroot.
   + debian/setup-mysql:
    - Changed to use /var/www instead of /srv/www.
  * debian/patches/010_remove_update_notice.patch:
    - Reworked original patch to remove Wordpress upgrade notify
      in admin dashboard (Rolf Leggewie) (LP: #227547)
  * Include patch for CVE2008-3747 (LP: #269301)

 -- Stefan Lesicnik <email address hidden> Sun, 23 Nov 2008 18:12:33 +0200

wordpress (2.5.1-10) unstable; urgency=high

  * 007CVE2008-2392.patch modified.
    Now users chan dinamically choose to enable unrestricted upload for admins.
  * 010_REQUEST.patch added.
    This patch is only a workaround for #504771. Now cookies are properly
    checked; if something malicious is found wordpress stops any other execution
    until cookies are not cleaned.

 -- Andrea De Iacovo <email address hidden> Thu, 06 Nov 2008 10:12:35 +0100

wordpress (2.5.1-9ubuntu1) jaunty; urgency=low

  * Merge from debian unstable, remaining changes:
   + debian/apache.conf:
    - Changed to use /var/www instead of /srv/www for virtual webroot.
   + debian/setup-mysql:
    - Changed to use /var/www instead of /srv/www.
    - modified to fix permissions on /var/www
   + debian/patches/010_remove_update_notice.patch:
    - Removed Wordpress upgrade notify in admin dashboard.

 -- Emanuele Gentili <email address hidden> Fri, 07 Nov 2008 05:44:33 +0100

Related branches

Stefan Lesicnik (stefanlsd) wrote :
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package wordpress - 2.5.1-10ubuntu1

---------------
wordpress (2.5.1-10ubuntu1) jaunty; urgency=low

  * Merge from debian unstable, remaining changes: (LP: #301340)
   + debian/apache.conf:
    - Changed to use /var/www instead of /srv/www for virtual webroot.
   + debian/setup-mysql:
    - Changed to use /var/www instead of /srv/www.
  * debian/patches/010_remove_update_notice.patch:
    - Reworked original patch to remove Wordpress upgrade notify
      in admin dashboard (Rolf Leggewie) (LP: #227547)
  * Include patch for CVE2008-3747 (LP: #269301)

wordpress (2.5.1-10) unstable; urgency=high

  * 007CVE2008-2392.patch modified.
   Now users chan dinamically choose to enable unrestricted upload for admins.
  * 010_REQUEST.patch added.
   This patch is only a workaround for #504771. Now cookies are properly
   checked; if something malicious is found wordpress stops any other execution
   until cookies are not cleaned.

 -- Stefan Lesicnik <email address hidden> Sun, 23 Nov 2008 18:12:33 +0200

Changed in wordpress:
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Patches